CVE-2026-5107

medium

Red Hat

CVSS v3 Base Score

4.2

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L

EPSS Score

0.0%

Exploitation probability in 30 days

Top 87% most likely to be exploited

Attack Characteristics

Attack Vector

Network

Attack Complexity

High

Privileges Required

Low

User Interaction

None

Confidentiality

None

Integrity

Low

Availability

Low

Published: March 30, 2026 (45 days ago)

Last Modified: March 30, 2026

Vendor: Red Hat

Source: REDHAT

Description

A flaw was found in frr package. This vulnerability, located in the EVPN Type-2 Route Handler function, allowing a remote attacker to manipulate access controls when successfully exploited. Due to the high complexity of the attack, exploitation is considered difficult. This could potentially lead to unauthorized actions within the system.

CWE

CWE-807

Affected Products

Red Hat Enterprise Linux 10Red Hat Enterprise Linux 8Red Hat Enterprise Linux 9

References

🔗 bugzilla.redhat.com 🔗 www.cve.org 🔗 nvd.nist.gov 🔗 github.com 🔗 github.com

CVE-2026-5107

Vulnerability Report

Description

CWE

Affected Products

References